[Clamav-users] ClamAV 0.80, daemontools and logging
I've just installed ClamAV 0.80 onto a new mail server. It's running well through daemontools, as the test EICAR virus I send it through qmail-scanner is caught, marked and quarantined. However, I cannot get it to log to /var/log/clamd. /service/clamd/run: #!/bin/sh exec 21 exec /usr/local/bin/softlimit -a 4000 \ /usr/local/bin/setuidgid qscand /usr/local/sbin/clamd /service/clamd/log/run: #!/bin/sh exec /usr/local/bin/setuidgid qscand \ /usr/local/bin/multilog t s100 n20 /var/log/clamd clamd.conf: FixStaleSocket Foreground LocalSocket /tmp/clamd LogVerbose MaxThreads 20 ScanArchive ScanHTML ScanMail User qscand Odd bit: if I turn on Debug, I get debugging information to /var/log/clamd/current. Any ideas? Thanks, -Matt ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] ClamAV 0.80, daemontools and logging
Rick Macdougall wrote: Matt Gourley wrote: I've just installed ClamAV 0.80 onto a new mail server. It's running well through daemontools, as the test EICAR virus I send it through qmail-scanner is caught, marked and quarantined. However, I cannot get it to log to /var/log/clamd. /service/clamd/run: #!/bin/sh exec 21 exec /usr/local/bin/softlimit -a 4000 \ /usr/local/bin/setuidgid qscand /usr/local/sbin/clamd /service/clamd/log/run: #!/bin/sh exec /usr/local/bin/setuidgid qscand \ /usr/local/bin/multilog t s100 n20 /var/log/clamd clamd.conf: FixStaleSocket Foreground LocalSocket /tmp/clamd LogVerbose MaxThreads 20 ScanArchive ScanHTML ScanMail User qscand Hi, Logfile /dev/stdout (or stderr) in clamd.conf Regards, Rick I tried that. If I do that, I get either: ERROR: Problem with internal logger. Please check the permissions on the /dev/stdout file. ERROR: Can't open /dev/stdout in append mode (check permissions!). or the same for /dev/stderr. -Matt ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] ClamAV 0.80, daemontools and logging
Rick Macdougall wrote: Matt Gourley wrote: Rick Macdougall wrote: Matt Gourley wrote: clamd.conf: FixStaleSocket Foreground LocalSocket /tmp/clamd LogVerbose MaxThreads 20 ScanArchive ScanHTML ScanMail User qscand Hi, Logfile /dev/stdout (or stderr) in clamd.conf I tried that. If I do that, I get either: ERROR: Problem with internal logger. Please check the permissions on the /dev/stdout file. ERROR: Can't open /dev/stdout in append mode (check permissions!). or the same for /dev/stderr. Redhat ? :( Check the permissions on /dev/stdout and stderr and see if the user you are running it has permission to write to it. Regards, Rick ___ Yeah. Redhat. :( lrwxrwxrwx1 root root 17 Nov 3 15:14 /dev/stdout - ../proc/self/fd/1 lrwx--1 root root 64 Nov 9 14:15 /proc/self/fd/1 - /dev/pts/0 crwxrwxrwx1 root tty 136, 0 Nov 9 14:15 /dev/pts/0 `chmod 777 /proc/self/fd/1` doesn't work. Thanks, -Matt ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Re: [Clamav-users] ClamAV 0.80, daemontools and logging
Andrej Trobentar wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Rick Macdougall wrote: | /service/clamd/run: | | #!/bin/sh | exec 21 | exec /usr/local/bin/softlimit -a 4000 \ /usr/local/bin/setuidgid qscand /usr/local/sbin/clamd | | | /service/clamd/log/run: | | #!/bin/sh | exec /usr/local/bin/setuidgid qscand \ /usr/local/bin/multilog t s100 n20 /var/log/clamd Put exec /usr/local/bin/softlimit -a 4000 /usr/local/sbin/clamd and exec /usr/local/bin/multilog t s100 n20 /var/log/clamd in your startups files (without setuidgid). Works for me :) - -- Greetings from Slovenija, Andrej. *That* did it. Thanks, Andrej. :) -Matt ___ http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
[Clamav-users] Getting clamav to log with multilog
Hi all, I've been trying to get ClamAV to log via multilog so that I can generate reports via mrtg. I followed the instructions here: http://www.clamav.net/doc/0.75.1/clamd_supervised/clamd-daemontools-guide.txt but logging still goes to syslog. Have there been changes to this since the doc was written for 0.60? Thanks in advance, -Matt --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Getting clamav to log with multilog
Niek wrote: On 9/20/2004 4:32 PM +0200, Matt Gourley wrote: Hi all, I've been trying to get ClamAV to log via multilog so that I can generate reports via mrtg. I followed the instructions here: http://www.clamav.net/doc/0.75.1/clamd_supervised/clamd-daemontools-guide.txt Here are my relevant clamav.conf settings: LogFile /dev/stderr LocalSocket /tmp/clamd #LogTime #LogClean #LogSyslog #LogVerbose #LogFileUnlock #LogFileMaxSize 2M FixStaleSocket StreamSaveToDisk MaxThreads 30 MaxDirectoryRecursion 15 Foreground Regards, Niek Baakman Thanks for your response, Niek. My clamav.conf is setup exactly the same way, however, when I start clamd using clamdctl, clamd exits, supervise restarts it, clamd exits, etc. Logging is running but I get this in /var/log/clamd/current: @4000414f05f53a5b23ec server ended; result=0 @4000414f05f53a5b3b5c free() copt Any ideas? -Matt --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
Re: [Clamav-users] Getting clamav to log with multilog
Daniel Alberto CaƱas wrote: On Sep 20, 2004, at 12:41 PM, Matt Gourley wrote: Niek wrote: On 9/20/2004 4:32 PM +0200, Matt Gourley wrote: Hi all, I've been trying to get ClamAV to log via multilog so that I can generate reports via mrtg. I followed the instructions here: http://www.clamav.net/doc/0.75.1/clamd_supervised/clamd-daemontools- guide.txt Here are my relevant clamav.conf settings: LogFile /dev/stderr LocalSocket /tmp/clamd #LogTime #LogClean #LogSyslog #LogVerbose #LogFileUnlock #LogFileMaxSize 2M FixStaleSocket StreamSaveToDisk MaxThreads 30 MaxDirectoryRecursion 15 Foreground Regards, Niek Baakman Thanks for your response, Niek. My clamav.conf is setup exactly the same way, however, when I start clamd using clamdctl, clamd exits, supervise restarts it, clamd exits, etc. Logging is running but I get this in /var/log/clamd/current: @4000414f05f53a5b23ec server ended; result=0 @4000414f05f53a5b3b5c free() copt Any ideas? -Matt I have version 0.75. I had to patch clamd to be able to log to stderr. Then in the run file redirect stderr to stdout... like this: exec /usr/local/bin/setuidgid qscand $path_to_clamd 21 Woo-hoo! This works. Thanks, everybody. -Matt --- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php ___ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users